Lucene search

Huawei TechnologiesHUAWEI-SA-20171025-01-GAUSSDB

HistoryOct 25, 2017 - 12:00 a.m.

Security Advisory - Three Vulnerabilities in Huawei GaussDB

2017-10-2500:00:00

Huawei Technologies

www.huawei.com

157

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.006

Percentile

79.4%

JSON

There is a information leak vulnerability in libevent of Huawei GaussDB. Due to insufficient input validation, a remote attacker could exploit this vulnerability by sending a forged DNS response to an application using libevent. Successful exploit of the vulnerability could lead to reading data out of bounds on the heap, potentially disclosing a small amount of application memory. (Vulnerability ID: HWPSIRT-2017-05012)
This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2016-10195.

There is a DoS vulnerability in libevent of Huawei GaussDB. Due to insufficient input validation, a remote attacker could exploit this vulnerability by causing an application using libevent to parse a malformed IPv6 address. Successful exploit of the vulnerability could cause stack overflow and cause a crash. (Vulnerability ID: HWPSIRT-2017-05048)
This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2016-10196.

There is an out-of-bounds read vulnerability in libevent of Huawei GaussDB. Due to insufficient input validation, a remote attacker could exploit this vulnerability by causing an application using libevent to attempt resolving an empty hostname. Successful exploit of the vulnerability could cause out-of-bounds read and possibly cause a crash. (Vulnerability ID: HWPSIRT-2017-05049)
This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2016-10197.

Huawei has released software updates to fix these vulnerabilities. This advisory is available at the following link:
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171025-01-gaussdb-en

Affected configurations

Vulners

Node

huaweifusionsphere_openstack_firmwareMatchv100r005c10

huaweifusionsphere_openstack_firmwareMatchv100r006c00spc102

huaweifusionsphere_openstack_firmwareMatchv100r006c10

huaweioceanstor_sns3096_firmwareMatchv100r002c00

huaweioceanstor_sns3096_firmwareMatchv200r001c00

VendorProductVersionCPE
huaweifusionsphere_openstack_firmwarev100r005c10cpe:2.3:o:huawei:fusionsphere_openstack_firmware:v100r005c10:*:*:*:*:*:*:*
huaweifusionsphere_openstack_firmwarev100r006c00spc102cpe:2.3:o:huawei:fusionsphere_openstack_firmware:v100r006c00spc102:*:*:*:*:*:*:*
huaweifusionsphere_openstack_firmwarev100r006c10cpe:2.3:o:huawei:fusionsphere_openstack_firmware:v100r006c10:*:*:*:*:*:*:*
huaweioceanstor_sns3096_firmwarev100r002c00cpe:2.3:o:huawei:oceanstor_sns3096_firmware:v100r002c00:*:*:*:*:*:*:*
huaweioceanstor_sns3096_firmwarev200r001c00cpe:2.3:o:huawei:oceanstor_sns3096_firmware:v200r001c00:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
huawei	fusionsphere_openstack_firmware	v100r005c10	cpe:2.3:o:huawei:fusionsphere_openstack_firmware:v100r005c10:::::::*
huawei	fusionsphere_openstack_firmware	v100r006c00spc102	cpe:2.3:o:huawei:fusionsphere_openstack_firmware:v100r006c00spc102:::::::*
huawei	fusionsphere_openstack_firmware	v100r006c10	cpe:2.3:o:huawei:fusionsphere_openstack_firmware:v100r006c10:::::::*
huawei	oceanstor_sns3096_firmware	v100r002c00	cpe:2.3:o:huawei:oceanstor_sns3096_firmware:v100r002c00:::::::*
huawei	oceanstor_sns3096_firmware	v200r001c00	cpe:2.3:o:huawei:oceanstor_sns3096_firmware:v200r001c00:::::::*